Skip to Navigation
Skip to Main content
OIG Home
OIG Home


Skip SHARE THIS PAGE section Skip STAY CONNECTED section

CFPB Report: 2021-IT-C-010R September 8, 2021

Evaluation of the Bureau's Implementation of Splunk

available formats

  • Summary:

    PDF | HTML

Splunk is a software platform widely used for monitoring, searching, and analyzing real time machine-generated data and is often used by organizations as their primary security information and event management application. We are issuing this report on the Bureau's implementation of Splunk in accordance with security best practices and to examine the system's compliance with the Federal Information Security Modernization Act of 2014 and the information security policies, procedures, standards, and guidelines of the Bureau.

The Bureau's implementation of Splunk generally adheres to security best practices, the agency's information security policies and procedures, and FISMA. However, the Bureau can strengthen the effectiveness of controls implemented for Splunk in the areas of risk management, access controls, and configuration management. This report includes four recommendations and two matters for management consideration designed to increase the effectiveness of controls in these areas.

Given the sensitivity of our review, this report is restricted.